Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242501 9.3 危険 macrovision - Macrovision InstallFromTheWeb 用の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-0320 2012-09-25 16:47 2007-02-22 Show GitHub Exploit DB Packet Storm
242502 7.5 危険 okulsistem okul web - Okul Web Otomasyon Sistemi の etkinlikbak.asp における SQL インジェクションの脆弱性 - CVE-2007-0305 2012-09-25 16:47 2007-01-17 Show GitHub Exploit DB Packet Storm
242503 7.5 危険 mint - MiNT Haber Sistemi の duyuru.asp における SQL インジェクションの脆弱性 - CVE-2007-0304 2012-09-25 16:47 2007-01-17 Show GitHub Exploit DB Packet Storm
242504 10 危険 pancake.org - Zina における脆弱性 - CVE-2007-0303 2012-09-25 16:47 2007-01-17 Show GitHub Exploit DB Packet Storm
242505 6.8 警告 InstantASP Ltd. - InstantASP におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0302 2012-09-25 16:47 2007-01-17 Show GitHub Exploit DB Packet Storm
242506 4 警告 オラクル - Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne における脆弱性 - CVE-2007-0297 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242507 2.1 注意 オラクル - Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne における脆弱性 - CVE-2007-0296 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242508 7.8 危険 オラクル - Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne における脆弱性 - CVE-2007-0295 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242509 1.7 注意 オラクル - Oracle Enterprise Manager における脆弱性 - CVE-2007-0294 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
242510 6.4 警告 オラクル - Oracle Enterprise Manager における脆弱性 CWE-noinfo
情報不足 		CVE-2007-0293 2012-09-25 16:47 2007-01-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286401 7.0 HIGH
Local 		google android Race condition in the bindBackupAgent method in the ActivityManagerService in Android 4.4.4 allows local users with adb shell access to execute arbitrary code or any valid package as system by runnin… CWE-362
Race Condition 		CVE-2014-7953 2024-11-21 11:18 2017-07-8 Show GitHub Exploit DB Packet Storm
286402 8.8 HIGH
Network 		opendaylight defense4all OpenDaylight defense4all 1.1.0 and earlier allows remote authenticated users to write report data to arbitrary files. CWE-20
 Improper Input Validation  		CVE-2014-8149 2024-11-21 11:18 2017-06-28 Show GitHub Exploit DB Packet Storm
286403 6.5 MEDIUM
Network 		libtiff
opensuse 		libtiff
opensuse 		LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted TIFF image to the (1) checkInkNamesString function in tif_dir.c in the thumbnail tool, … CWE-125
Out-of-bounds Read 		CVE-2014-8127 2024-11-21 11:18 2017-06-27 Show GitHub Exploit DB Packet Storm
286404 7.5 HIGH
Network 		google android b/libs/gui/ISurfaceComposer.cpp in Android allows attackers to trigger a denial of service (null pointer dereference and process crash). CWE-476
 NULL Pointer Dereference 		CVE-2014-7919 2024-11-21 11:18 2017-06-9 Show GitHub Exploit DB Packet Storm
286405 5.5 MEDIUM
Local 		mongodb mongodb MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service. CWE-287
Improper Authentication 		CVE-2014-8180 2024-11-21 11:18 2017-06-7 Show GitHub Exploit DB Packet Storm
286406 9.8 CRITICAL
Network 		google android mediaserver in Android 4.0.3 through 5.x before 5.1 allows attackers to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7920. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-7921 2024-11-21 11:18 2017-04-14 Show GitHub Exploit DB Packet Storm
286407 9.8 CRITICAL
Network 		google android mediaserver in Android 2.2 through 5.x before 5.1 allows attackers to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7921. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-7920 2024-11-21 11:18 2017-04-14 Show GitHub Exploit DB Packet Storm
286408 5.5 MEDIUM
Local 		imagemagick imagemagick PCX parser code in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read). CWE-125
Out-of-bounds Read 		CVE-2014-8355 2024-11-21 11:18 2017-04-12 Show GitHub Exploit DB Packet Storm
286409 6.5 MEDIUM
Network 		imagemagick imagemagick The HorizontalFilter function in resize.c in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file. CWE-125
Out-of-bounds Read 		CVE-2014-8354 2024-11-21 11:18 2017-04-12 Show GitHub Exploit DB Packet Storm
286410 9.8 CRITICAL
Network 		vivint sky_control_panel_firmware Vivint Sky Control Panel 1.1.1.9926 allows remote attackers to enable and disable the alarm system and modify other security settings via the Web-enabled interface. CWE-284
Improper Access Control 		CVE-2014-8362 2024-11-21 11:18 2017-01-24 Show GitHub Exploit DB Packet Storm